$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa File: 323430363a356334303a3a2f33322d3438203d3e20313331373035.roa (raw, json) Hash identifier: 8VCUWxHJ51izEEysoTPMuCiKiQG+yyctOxgugVSnvrA= Subject key identifier: 7A:C4:3B:03:CC:70:05:96:3A:9E:4D:6D:74:C7:B9:A4:A7:F4:FC:EA Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 45127AD1009FDA548F9FF3A1C388495B5B78657C Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa Signing time: Thu 13 Jul 2023 15:22:33 +0000 ROA not before: Thu 13 Jul 2023 15:17:33 +0000 ROA not after: Thu 11 Jul 2024 15:22:33 +0000 asID: 131705 IP address blocks: 2406:5c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:12:7a:d1:00:9f:da:54:8f:9f:f3:a1:c3:88:49:5b:5b:78:65:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: Jul 13 15:17:33 2023 GMT Not After : Jul 11 15:22:33 2024 GMT Subject: CN=7AC43B03CC7005963A9E4D6D74C7B9A4A7F4FCEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:a6:68:1e:f3:21:eb:85:10:30:bb:03:6e:6a: 0f:fb:6e:90:c1:84:6b:fa:2c:70:63:9b:8e:e7:c7: ef:3c:d2:ee:5f:c7:5b:ae:84:4b:a3:8b:94:6d:e5: 2b:ac:c2:12:1c:00:e8:17:4a:d7:cc:e5:4a:8b:6c: 33:19:e5:bf:c7:40:24:17:00:9e:28:26:7b:33:1c: 79:18:2c:ce:0c:e8:b2:2d:84:9e:29:47:51:03:e4: 70:a4:f3:bd:07:9b:60:79:cf:9b:9a:ce:eb:52:d9: e9:9e:23:6b:46:7e:0e:4e:80:1d:a7:fb:86:f6:75: a3:6f:e9:b4:b0:73:94:0e:83:a2:d3:e1:c7:b0:1a: 5d:61:a9:6f:c3:85:de:bf:9a:0d:6f:5f:4b:7f:b3: 35:f2:c5:5b:91:db:e9:de:7d:c0:fa:be:45:bc:eb: 80:95:fe:ca:03:a9:99:9d:27:7f:f2:f1:91:43:b0: 90:e0:b8:a4:20:56:72:d7:6d:dd:3b:36:4e:66:87: ff:d4:e0:80:6a:a2:32:91:03:c7:13:b2:97:06:b7: 9e:28:68:6d:1e:73:de:33:d8:88:65:2b:07:f8:62: fa:74:ca:08:1f:84:1a:0e:e7:6a:0c:bc:f5:5e:f6: 3b:4e:02:a6:72:d4:59:ff:30:51:98:bf:b8:a6:51: 42:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C4:3B:03:CC:70:05:96:3A:9E:4D:6D:74:C7:B9:A4:A7:F4:FC:EA X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33322d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40::/32 Signature Algorithm: sha256WithRSAEncryption 30:c0:4e:e9:c6:f5:32:77:3e:b8:e3:24:8d:b2:52:a9:dc:6e: 09:cb:30:e9:6c:f7:9d:81:56:cf:27:4a:d3:05:c6:00:36:d8: d1:93:e4:9f:d8:66:a2:fe:82:ed:b4:69:db:8b:e1:b5:09:5d: 0f:59:9d:71:ba:38:d4:87:8c:9a:d2:67:aa:2f:9c:71:13:24: 1d:b4:06:41:44:b5:4a:cc:dc:d9:a6:2b:54:50:91:65:c1:f2: 9b:6d:f3:f6:5d:96:f6:3d:ca:38:dd:6f:14:95:e8:94:8d:8b: 2f:12:af:ca:1a:4e:bb:36:3c:1e:8d:ef:3e:aa:19:08:c9:52: 7d:43:c8:ab:91:83:98:9a:4e:1c:97:73:8b:5f:dc:e1:6e:b3: 06:35:d7:3c:07:36:ae:9d:3e:1f:d4:7b:83:98:3b:90:4f:3b: 6f:51:01:fa:5e:e5:d7:78:2f:30:71:0e:ea:1d:c8:ba:a1:c1: 00:33:0f:d3:cf:c3:38:0c:a0:f7:64:a4:8c:f9:b6:09:95:27: c1:f3:6c:4f:ff:76:f3:d1:d2:13:f5:81:ae:cd:df:68:32:d2: d8:d8:9d:c1:59:d6:f0:ab:7e:b2:8d:8b:5e:55:82:2b:59:1a: 8d:2d:57:94:33:74:7d:7c:c0:07:9b:0c:88:e6:2a:f5:10:db: 0c:7c:0a:b4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURRJ60QCf2lSPn/Ohw4hJW1t4ZXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yMzA3MTMxNTE3MzNaFw0yNDA3MTExNTIyMzNaMDMxMTAvBgNV BAMTKDdBQzQzQjAzQ0M3MDA1OTYzQTlFNEQ2RDc0QzdCOUE0QTdGNEZDRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5pmge8yHrhRAwuwNuag/7bpDB hGv6LHBjm47nx+880u5fx1uuhEuji5Rt5SuswhIcAOgXStfM5UqLbDMZ5b/HQCQX AJ4oJnszHHkYLM4M6LIthJ4pR1ED5HCk870Hm2B5z5uazutS2emeI2tGfg5OgB2n +4b2daNv6bSwc5QOg6LT4cewGl1hqW/Dhd6/mg1vX0t/szXyxVuR2+nefcD6vkW8 64CV/soDqZmdJ3/y8ZFDsJDguKQgVnLXbd07Nk5mh//U4IBqojKRA8cTspcGt54o aG0ec94z2IhlKwf4Yvp0yggfhBoO52oMvPVe9jtOAqZy1Fn/MFGYv7imUUL1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUesQ7A8xwBZY6nk1tdMe5pKf0/OowHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGXEAwDQYJKoZI hvcNAQELBQADggEBADDATunG9TJ3PrjjJI2yUqncbgnLMOls952BVs8nStMFxgA2 2NGT5J/YZqL+gu20aduL4bUJXQ9ZnXG6ONSHjJrSZ6ovnHETJB20BkFEtUrM3Nmm K1RQkWXB8ptt8/ZdlvY9yjjdbxSV6JSNiy8Sr8oaTrs2PB6N7z6qGQjJUn1DyKuR g5iaThyXc4tf3OFuswY11zwHNq6dPh/Ue4OYO5BPO29RAfpe5dd4LzBxDuodyLqh wQAzD9PPwzgMoPdkpIz5tgmVJ8HzbE//dvPR0hP1ga7N32gy0tjYncFZ1vCrfrKN i15VgitZGo0tV5QzdH18wAebDIjmKvUQ2wx8CrQ= -----END CERTIFICATE-----Generated at Sat Jun 1 04:58:29 2024 by rpki-client on console-fra.rpki-client.org